Recently in Virus alert Category

I've been phished - Twitter scam gets my password in 'This You?' attack. Did it get yours?

By Steven Rosenberg on February 25, 2010 9:50 PM | | Comments (2) |

I've never fallen for a phishing scam before. But I did today.

I got one of these "this you???" messages from one of my Twitter followers, clicked it and got what I thought was the Twitter login screen.

It wasn't.

It was a phishing scam that throws up a fake login screen, into which I duitifully typed my Twitter login and password.

I even got a warning screen from Firefox that said "Reported Web Forgery." But the last time I got such a screen (when, for a day or so, every Web site was a "reported forgery," shaking my confidence in the Firefox feature) I again thought it was a false warning, just clicked right through it, and ...

Yes, I was pwned.

I've managed to avoid this sort of thing before. If you look at the URL box before you type in any logins and passwords, you can avoid such things. This time I was busy. Didn't look. Got pwned.

Sorry to all my Twitter followers who got direct messages (DMs in Twitterspeak) from my Twitter account. I've since changed the password, so the damage has been contained. I have more than a few different passwords I use. Now I need to go to all the places I used this particular password and change it there, too. These phishing scams can go further than you might think.

While it's the proverbial cold comfort, I'm far from alone. This sort of thing has been going around big time over the past few days as Twitter users have fallen prey to this attack.

I should be smart enough NOT to click past Firefox's warning screen. The browser tried its best to save me from being an idiot.

I just checked one of the suspect messages and clicked through the screens just to see what I saw before. Yep, the screen looks just like the Twitter sign-in screen, only the URL is not http://twitter.com. Bad! I really shouldn't have fallen for this. But I did.

So if you get a warning from your browser, heed it! And be careful with Twitter, Facebook, or just about any site that requires a login and password.

WARNING: Is there an "Internet Explorer 7" virus in your e-mail?

By Steven Rosenberg on April 2, 2007 10:17 AM | | Comments (0) |

I just got an honest-to-god virus in my Daily News e-mail -- it looks like an e-mail from Microsoft offering a download of Internet Explorer 7, but if you mouse over the graphic (DO NOT CLICK ON IT). you can see that the link doesn't go to Microsoft but to something with the words "gc-music" in it.

The "sender" (and yes, it is easy to put any address in the "from" field) is admin("at")microsoft.com -- and the subject line is "Internet Explorer 7 Downloads."

Whatever you do, DON'T CLICK ON THE GRAPHIC. For more on the virus, go to this PC World page:

The e-mails carry the subject line "Internet Explorer 7 Downloads" and appear to come from admin@microsoft.com. They include a blue, Microsoft-style graphic offering a download of IE 7 beta 2. Clicking the graphic will download an executable file called IE 7.exe.
The file is actually a new virus called Virus.Win32.Grum.A, and security experts were still analyzing it Friday to see what it does. Sophos PLC said it can spread by e-mailing itself to contacts in a user's address book. The virus tampers with registry files to ensure it gets installed, and it tries to download additional files from the Internet, said Graham Cluley, a senior technology consultant for Sophos.
Other specifics were unknown yet, but such viruses often install a keystroke logger to steal personal information, and establish a network of infected computers to launch a denial of service attack, Cluley said.

The report also says that this virus is poorly detected by current antivirus programs, and that it affects only Windows users.

« Virtualization | Main Index | Archives | Web Browsing »

Tech Talk column

Steven Rosenberg's weekly Tech Talk column, which appeared Saturdays in the Los Angeles Daily News through about October 2009, is available on the Daily News Technology page.

About this blog





Steven Rosenberg aims to learn what he does not know. He writes about it here.


About this Archive

This page is a archive of recent entries in the Virus alert category.

Virtualization is the previous category.

Web Browsing is the next category.

Find recent content on the main index or look in the archives to find all content.

Recent Comments

Anon on Google Chrome/Chromium crashy Flash problems (and a solution for Chromium in Linux): If you had a kernel panic the fault does not belong to Flash. I comple ...

Alan Rochester on Google Chrome/Chromium crashy Flash problems (and a solution for Chromium in Linux): It seems to be cropping up on a variety of distros... One howto is: h ...

Johnny Angel on File under 'this can't be a good sign': Unity development stalls for openSUSE, Fedora: I'm a little guy but I've told my friends that if they need future hel ...

Steven Rosenberg on OpenBSD how-to: Installing GRUB and dual-booting with Windows: I'm not commenting on where pkg_add installs a given package. All I'm ...

Thanos Tsouanas on OpenBSD how-to: Installing GRUB and dual-booting with Windows: Nice notes. A few comments though: "The reason is that pkg_add puts ...

Steve Chan on Ubuntu's money problem: How much (if any) should Canonical take from Banshee's Amazon sales? (And did Canonical split the baby right in the final compromise?): Messy, predatory and hidden???? Woot? I didn't realise that the Bans ...

Steven Rosenberg on A very early look at Fedora 15 through the 2/17/11 nightly build: It's surprisingly stable: You know what I like about living in Los Angeles? You might think it's ...

Pablo Marchant on A very early look at Fedora 15 through the 2/17/11 nightly build: It's surprisingly stable: I think the situation of the author happens under two different scenar ...

Steven Rosenberg on Fedora 13 updates: New kernel 2.6.34.7-61 fixes NetworkManager suspend issue: Things only got worse for me with F13 and F14. I switched to Debian. ...

Herald van der Breggen on Fedora 13 updates: New kernel 2.6.34.7-61 fixes NetworkManager suspend issue: Same problem here and this appeared to be a solution for me: after boo ...

Powered by Movable Type 4.25

Search this blog

Loading

LXer

Links

Life, the Universe and Debian
Daily News technology
LXer
Distrowatch
Linus' Blog
David Pogue
BoingBoing
Linux Today
TuxRadar
Linux.com
Linux Planet
The Open Road
Linux Outlaws podcast
Dan Lynch
Fabian Scherschel
The VAR Guy
Larry the Free Software Guy
Chess Griffin
Linux Reality podcast
Desktop Linux
Practical Technology
Linux Devices
ZDNet
ZDNet's Storage Bits
ZDNet U.K.
iTWire
CNet News
Webware
Beyond Binary
TechCrunch
The Register
Ars Technica
Reg Developer
Computerworld
Computerworld blogs
Steven J. Vaughan-Nichols at Computerworld
Debian
Planet Debian
Debian Forums
Debian News
debianHELP
debiantutorials.org
The Debian User
Wolfgang Lonien
Debian-News.net
Debian Administration
Debian Admin
Debian Weather
Aaron Toponce
Ubuntu
Xubuntu
Kubuntu
Edubuntu
Planet Ubuntu
Ubuntu Forums
Ubuntu Geek
Works With U
OMG! Ubuntu!
I' Been to Ubuntu
Tanner Helland
Dustin Kirkland
Ubuntu UK Podcast
Ubuntu Linux Help
Popey
Linux Mint
CrunchBang Linux
OpenBSD
OpenBSD Journal
OpenBSD Ports
OpenBSD 101
Planet.OpenBSD.nu
jggimi's OpenBSD live CD
DaemonForums
BSDanywhere
Marc Balmer
Denny's OpenBSD blog
Polarwave's OpenBSD Tips and Tricks
Binary Updates for OpenBSD
Puppy Linux
Damn Small Linux
Tiny Core Linux
Lucky 13's Linux blog (lots of Tiny Core)
Lucky 13's BSD blog
PCLinuxOS
Mandriva
Red Hat
Red Hat News
Red Hat Blogs
Red Hat: Truth Happens
Red Hat Magazine
CentOS
Planet CentOS
Fedora
Planet Fedora
Fedora Forums
Fedora Docs
Join Fedora
Paul Frields
Slackware
Slackbuilds
Robby's Slackware Packages
Slackblogs
dropline GNOME for Slackware
GNOME Slackbuild
GWARE - GNOME for Slackware
Wolvix
Zenwalk Linux
Vector Linux
Slax
Splack Linux — Slackware for Sparc
Nonux
How to Forge
marc.info BSD and Linux mailing list archive
FreeBSD
FreeBSD, the Unknown Giant
A Year in the Life of a BSD Guru
NetBSD
hubertf's NetBSD Blog
PC-BSD
Daemon Forums
FreeBSD Forums
Planet FreeBSD
Evilcoder.org
miwi's Privat Blog
DragonFlyBSD
DragonFlyBSD Digest
DesktopBSD
BSD Talk podcast
BSD Magazine
Rhyous
OpenSolaris
MilaX
BeleniX
DeLi Linux
Linux Loop
Electronista
The Tech Report
Engadget
Gizmodo
Phoronix
xkcd – A webcomic of romance, sarcasm, math and language
Nixie Pixel
Technology for Mortals
Thoughts on Technology
ZaReason
System 76
Tiger Direct
NewEgg
DealExtreme

Advertisement

Other blogs

I've been phished - Twitter scam gets my password in 'This You?' attack. Did it get yours? in CLICK